cbcvebase.
CVE-2011-1999
published 2011-10-12

CVE-2011-1999: Microsoft Internet Explorer 8 does not properly allocate and access memory, which allows remote attackers to execute arbitrary code via vectors involving a…

PriorityP259critical9.3CVSS 2.0
AVNACMAuNCCICAC
EXPLOIT
EPSS
27.96%
97.9th percentile
Microsoft Internet Explorer 8 does not properly allocate and access memory, which allows remote attackers to execute arbitrary code via vectors involving a "dereferenced memory address," aka "Select Element Remote Code Execution Vulnerability."

Affected

1 ranges
VendorProductVersion rangeFixed in
microsoftinternet_explorer

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is triggered via memory corruption involving a dereferenced memory address in Internet Explorer 8's handling of Select elements — monitor for IE8 processes crashing or executing shellcode after rendering pages with malformed Select elements
  • Exploit involves heap spray technique using JavaScript string manipulation (substr comparisons in a bisection loop) to locate and manipulate memory — detect large repetitive JavaScript string allocations in IE8 renderer process
  • Target application is Internet Explorer 8 specifically; failed exploitation may manifest as denial-of-service/crash — alert on iexplore.exe crashes correlated with Select element DOM activity
  • ·Vulnerability is specific to Internet Explorer 8 only; other IE versions are not affected by this particular Select element memory corruption issue
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.